EUVD-2005-3039

Malware in sbrugna...

EUVD-2005-3043

Malware in sbrugna...

CVE-2005-3039

SQL injection vulnerability in infopage.asp in Mall23 eCommerce allows remote attackers to execute arbitrary SQL commands via the idPage parameter...

Mall23 AddItem.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14898/info Mall23 is prone to an SQL injection vulnerability. This is due to a lack of proper sanitization of user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of th...

[SA16903] Mall23 eCommerce "idOption_Dropdown_2" SQL Injection Vulnerability

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

mall23.txt

ORIGINAL LINK: http://systemsecure.org/ssforum/viewtopic.php?t=277 ------------------------------------- Ref: SS21092005 SYSTEMSECURE.ORG - Advisory/Exploit PUBLIC ADVISORY ------------------------------------- » Software: Mall23 » Link: http://www.mall23.com/ » Attacks: SQL Injection » Discovere...

CVE-2005-3043

SQL injection vulnerability in AddItem.asp in Mall23 eCommerce allows remote attackers to execute arbitrary SQL commands via the idOptionDropdown2 parameter...

CVE-2005-3039

SQL injection vulnerability in infopage.asp in Mall23 eCommerce allows remote attackers to execute arbitrary SQL commands via the idPage parameter...

CVE-2005-3043

Mall23 eCommerce is affected by a SQL injection in AddItem.asp, allowing remote attackers to inject arbitrary SQL via idOption_Dropdown_2. The issue has CVSS2 base score 7.5 (HIGH) with network/low complexity/unauthenticated access and partial impact on confidentiality, integrity, and availabilit...

CVE-2005-3039

SQL injection vulnerability in infopage.asp in Mall23 eCommerce allows remote attackers to execute arbitrary SQL commands via the idPage parameter...

CVE-2005-3039

CVE-2005-3039 describes an SQL injection in Mall23 eCommerce where the infopage.asp script processes the idPage parameter, enabling remote arbitrary SQL execution. The issue arises from improper handling of user-supplied input in the SQL query, consistent with the CVSS data indicating network acc...

CVE-2005-3043

SQL injection vulnerability in AddItem.asp in Mall23 eCommerce allows remote attackers to execute arbitrary SQL commands via the idOptionDropdown2 parameter...

[SA16778] Mall23 eCommerce "idPage" SQL Injection Vulnerability

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

Mall23 - AddItem.asp SQL Injection

Mall23 - AddItem.asp SQL Injection source: https://www.securityfocus.com/bid/14898/info Mall23 is prone to an SQL injection vulnerability. This is due to a lack of proper sanitization of user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of t...

Mall23 - 'AddItem.asp' SQL Injection

source: https://www.securityfocus.com/bid/14898/info Mall23 is prone to an SQL injection vulnerability. This is due to a lack of proper sanitization of user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of the application, disclosure or...